gamonoid / icehrm

Manage your employees easily with a robust and efficient Human Resource Management System
http://icehrm.com
Other
601 stars 379 forks source link

Bump phpseclib/phpseclib from 2.0.29 to 2.0.41 in /core/lib/composer #329

Open dependabot[bot] opened 1 year ago

dependabot[bot] commented 1 year ago

Bumps phpseclib/phpseclib from 2.0.29 to 2.0.41.

Release notes

Sourced from phpseclib/phpseclib's releases.

2.0.41

  • fix for more PHP 8.2 deprecations (#1875)

2.0.40

  • fix for PHP 8.2 deprecations (#1869)
  • SSH2: if logging in with rsa-sha2-256/512 fails, try ssh-rsa (#1865)
  • SSH/Agent: add support for named pipes on windows (for pageant) (#1866)
  • Crypt/Base: add a function to check continuous buffer status (#1870)
  • OpenSSL 3.0.1+ deprecated some algorithms (RC2, RC4, DES, Blowfish)

2.0.39

  • SFTP: fix deprecated implicit float to int on 32-bit PHP 8.1 (#1841)
  • SFTP: restore orig behavior when deleting non-existant folder (#1847)
  • Random: fix fallback on PHP 8.1+

2.0.38

  • RSA: add support for OpenSSH encrypted keys (#1737, #1733, #1531, #1490)
  • SSH2: fix possibly undefined variable error (#1802)
  • SFTP: try to delete dir even if it can't be opened (#1791)
  • SFTP: try without path canonicalization if initial realpath() fails (#1796)
  • SFTP: detect if stream metadata has wrapper_type set for put() method (#1792)
  • BigInteger: fix behavior on 32-bit PHP installs (#1820)
  • don't use dynamic properties, which are deprecated in PHP 8.2 (#1808, #1822)
  • fix deprecated implicit float to int on 32-bit PHP 8.1

2.0.37

  • RSA: add support for loading PuTTY v3 keys
  • Crypt/Base: fix CTR mode with continuous buffer with non-eval PHP
  • Crypt/Base: use sodium_increment in _increment_str
  • Crypt/Base: fix deprecation notice (#1770)
  • SSH2/Agent: rm unused parameter (#1757)

2.0.36

  • SSH2: make login() return false if no valid auth methods are found (#1744)
  • SFTP: fix chgrp() for version < 4 (#1730)
  • phpseclib/mcrypt_compat#33
  • RSA & BigInteger: check phpinfo() available before using it (#1726)

2.0.35

  • SSH2: add "smart multi factor" login mode (enabled by default) (#1648)
  • SSH2: error out when no data is received from the server (#1647)
  • SFTP: don't attempt to parse unsupported attributes (#1708)
  • SFTP: getSupportedVersions() call didn't work

2.0.34

  • SSH2: add support for zlib and zlib@openssh.com compression
  • SFTP: add support for SFTPv4/5/6
  • SFTP: add option to allow arbitrary length packets (#1691)
  • RSA: ssh-keygen -yf private.key fails if \r is present (#1698)

... (truncated)

Changelog

Sourced from phpseclib/phpseclib's changelog.

2.0.41 - 2022-12-23

  • fix for more PHP 8.2 deprecations (#1875)

2.0.40 - 2022-12-17

  • fix for PHP 8.2 deprecations (#1869)
  • SSH2: if logging in with rsa-sha2-256/512 fails, try ssh-rsa (#1865)
  • SSH/Agent: add support for named pipes on windows (for pageant) (#1866)
  • Crypt/Base: add a function to check continuous buffer status (#1870)
  • OpenSSL 3.0.1+ deprecated some algorithms (RC2, RC4, DES, Blowfish)

2.0.39 - 2022-10-24

  • SFTP: fix deprecated implicit float to int on 32-bit PHP 8.1 (#1841)
  • SFTP: restore orig behavior when deleting non-existant folder (#1847)
  • Random: fix fallback on PHP 8.1+

2.0.38 - 2022-09-02

  • RSA: add support for OpenSSH encrypted keys (#1737, #1733, #1531, #1490)
  • SSH2: fix possibly undefined variable error (#1802)
  • SFTP: try to delete dir even if it can't be opened (#1791)
  • SFTP: try without path canonicalization if initial realpath() fails (#1796)
  • SFTP: detect if stream metadata has wrapper_type set for put() method (#1792)
  • BigInteger: fix behavior on 32-bit PHP installs (#1820)
  • don't use dynamic properties, which are deprecated in PHP 8.2 (#1808, #1822)
  • fix deprecated implicit float to int on 32-bit PHP 8.1

2.0.37 - 2022-04-04

  • RSA: add support for loading PuTTY v3 keys
  • Crypt/Base: fix CTR mode with continuous buffer with non-eval PHP
  • Crypt/Base: use sodium_increment in _increment_str
  • Crypt/Base: fix deprecation notice (#1770)
  • SSH2/Agent: rm unused parameter (#1757)

2.0.36 - 2022-01-30

  • SSH2: make login() return false if no valid auth methods are found (#1744)
  • SFTP: fix chgrp() for version < 4 (#1730)
  • phpseclib/mcrypt_compat#33
  • RSA & BigInteger: check phpinfo() available before using it (#1726)

2.0.35 - 2021-11-28

  • SSH2: add "smart multi factor" login mode (enabled by default) (#1648)
  • SSH2: error out when no data is received from the server (#1647)
  • SFTP: don't attempt to parse unsupported attributes (#1708)
  • SFTP: getSupportedVersions() call didn't work

... (truncated)

Commits
  • 7e763c6 CHANGELOG: add 2.0.41 release
  • aa68ee7 Merge branch '1.0' into 2.0
  • 797351c Fix undefined properties deprecated in PHP 8.2
  • 5ef6f83 CHANGELOG: add 2.0.40 release
  • be361b6 Merge branch '1.0' into 2.0
  • c99e38b OpenSSL 3.0.1+ deprecated some algorithms
  • 6611c0b Merge branch '1.0' into 2.0
  • 1c56e00 SSH2: if logging in with rsa-sha2-256/512 fails, try ssh-rsa
  • e8ff514 Merge branch '1.0' into 2.0
  • 16df002 Crypt/Base: add a function to check continuous buffer status
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/gamonoid/icehrm/network/alerts).